b'           OFFICE OF\n    THE INSPECTOR GENERAL\n\nSOCIAL SECURITY ADMINISTRATION\n\n  FOLLOW-UP: THE SOCIAL SECURITY\n ADMINISTRATION\xe2\x80\x99S INTERNAL USE OF\nEMPLOYEES\xe2\x80\x99 SOCIAL SECURITY NUMBERS\n\n     June 2008    A-13-07-27164\n\n\n\n\nAUDIT REPORT\n\x0c                                    Mission\nBy conducting independent and objective audits, evaluations and investigations,\nwe inspire public confidence in the integrity and security of SSA\xe2\x80\x99s programs and\noperations and protect them against fraud, waste and abuse. We provide timely,\nuseful and reliable information and advice to Administration officials, Congress\nand the public.\n\n                                   Authority\nThe Inspector General Act created independent audit and investigative units,\ncalled the Office of Inspector General (OIG). The mission of the OIG, as spelled\nout in the Act, is to:\n\n  \xef\x81\xad Conduct and supervise independent and objective audits and\n    investigations relating to agency programs and operations.\n  \xef\x81\xad Promote economy, effectiveness, and efficiency within the agency.\n  \xef\x81\xad Prevent and detect fraud, waste, and abuse in agency programs and\n    operations.\n  \xef\x81\xad Review and make recommendations regarding existing and proposed\n    legislation and regulations relating to agency programs and operations.\n  \xef\x81\xad Keep the agency head and the Congress fully and currently informed of\n    problems in agency programs and operations.\n\n  To ensure objectivity, the IG Act empowers the IG with:\n\n  \xef\x81\xad Independence to determine what reviews to perform.\n  \xef\x81\xad Access to all information necessary for the reviews.\n  \xef\x81\xad Authority to publish findings and recommendations based on the reviews.\n\n                                     Vision\nWe strive for continual improvement in SSA\xe2\x80\x99s programs, operations and\nmanagement by proactively seeking new ways to prevent and deter fraud, waste\nand abuse. We commit to integrity and excellence by supporting an environment\nthat provides a valuable public service while encouraging employee development\nand retention and fostering diversity and innovation.\n\x0c                                       SOCIAL SECURITY\nMEMORANDUM\n\nDate:      June 9, 2008                                                     Refer To:\n\nTo:        The Commissioner\n\nFrom:      Inspector General\n\nSubject:   Follow-up: The Social Security Administration\xe2\x80\x99s Internal Use of Employees\xe2\x80\x99 Social\n           Security Numbers (A-13-07-27164)\n\n\n           OBJECTIVE\n\n           Our objective was to determine the extent to which the Social Security Administration\n           (SSA) implemented the recommendations from our August 2004 report, The Social\n           Security Administration\xe2\x80\x99s Internal Use of Employees\xe2\x80\x99 Social Security Numbers.\n\n           BACKGROUND\n           The Social Security number (SSN) was created in 1936 as a means of tracking workers\xe2\x80\x99\n           earnings and eligibility for Social Security benefits. Nevertheless, the SSN has become\n           a de facto national identifier used by Federal agencies, State and local governments,\n           and private organizations. The expanded use of the SSN as a national identifier\n           provides a tempting motive for unscrupulous individuals to acquire and use it for illegal\n           purposes.\n\n           Federal agencies frequently ask individuals for their SSNs because, in certain\n           instances, the law requires that they do so. Federal agencies have a responsibility to\n           limit the risk of unauthorized disclosure of SSNs. Although no single Federal law\n           regulates overall use and disclosure of SSNs by Federal agencies, the Freedom of\n           Information Act of 1966, the Privacy Act of 1974, and the Social Security Act\n           Amendments of 1990 generally govern disclosure and use of SSNs.\n\n           Our 2004 report contained several concerns about the use of the employees\xe2\x80\x99 SSNs and\n           made five recommendations to address these issues. The Agency agreed with all of\n           these recommendations. In this audit, we reviewed the extent to which SSA had\n           implemented the five recommendations. See Appendix B for a detailed discussion of\n           the Scope and Methodology.\n\n           In addition, we reviewed information SSA reported pertaining to the Office of\n           Management and Budget\xe2\x80\x99s (OMB) request that Federal agencies, including SSA, review\n           their use of SSNs. This request relates to the President\'s Identity Theft Task Force\n\x0cPage 2 - The Commissioner\n\n\nSeptember 2006 interim recommendations. Specifically, the Task Force recommended\nthat OMB require that all Federal agencies review their use of SSNs to determine\nwhether such use can be eliminated, restricted, or concealed in agency business\nprocesses, systems and electronic forms. On January 16, 2007, the Agency reported\nto OMB how its business processes used SSNs as well as alternatives, vulnerabilities\nand safeguards for SSNs. During our review, we examined the accuracy of the\ninformation reported that pertained to Agency employees\xe2\x80\x99 SSNs. See the \xe2\x80\x9cOther\nMatter\xe2\x80\x9d section and Appendix C for the results of our review.\n\nRESULTS OF REVIEW\nSSA took corrective action on all recommendations from our August 2004 report, The\nSocial Security Administration\xe2\x80\x99s Internal Use of Employees\xe2\x80\x99 Social Security Numbers.\nIn addition, the Agency took other actions regarding the use of its employees\xe2\x80\x99 SSNs.\nBelow, we discuss Recommendations 1 through 5, the corrective actions taken by the\nAgency, and the results of our current review.\n\n   Recommendation 1: We recommend SSA remind employees to secure any\nsystem or document containing employee SSNs when these systems or documents are\nnot being used.\n\nThe Agency responded its Office of Systems Security Operations Management and\nChief Security Officer issue periodic and ad hoc bulletins to SSA employees concerning\nsystems security matters. Generally, the bulletins focus on systems security issues that\nimpact a range of users and developers or are applicable Agency-wide. SSA has\nestablished systems security policies and procedures that require a suite of controls\nover systems that contain sensitive data, such as SSA clients\xe2\x80\x99 SSNs and employee\nSSNs. Therefore, SSA will take steps to ensure managers and staff adhere to the\nexisting procedures and handling documents associated with administrative activities.\n\nOur current review found the Agency had taken several actions to remind employees to\nsecure systems and documents that contain employees\xe2\x80\x99 SSNs. On March 28, 2005,\nSSA issued the bulletin, Sensitive Information Reminder, which reminds employees to\nsecure systems and/or documents containing employee SSNs. According to Agency\nstaff, all policies and procedures related to protecting employees\xe2\x80\x99 SSNs should be\nrepresented in the Information Systems Security Handbook and the Information System\nOfficer Guide. We reviewed the January 2007 Security Handbook and found it\ncontained information about handling employees\xe2\x80\x99 SSNs.\n\x0cPage 3 - The Commissioner\n\n\nAlso, information about handling and securing Personally Identifiable Information, 1\nwhich can include SSNs, has been added to the Agency\xe2\x80\x99s Office of Systems Security\nOperations Management\'s website. We reviewed the website and found it provided\nguidance regarding the handling of employees\xe2\x80\x99 SSNs.\n\n    Recommendation 2: We recommend SSA consider using asterisks, if determined\nto be cost-effective, to hide the employee SSN on computer screens and reports in all\nexisting and future systems. Asterisks are currently used in the Mainframe Time and\nAttendance System to hide the employee SSN.\n\nSSA responded it would consider the costs and benefits of using asterisks when\ndeveloping future enhancements.\n\nDuring our current review, we examined the 38 automated information systems the\nAgency reported as using employees\xe2\x80\x99 SSNs. Of the 38, we found the Agency modified\nthe computer screen display of employees\xe2\x80\x99 SSNs for 21 systems. Of the remaining 17,\nthe Agency does not plan to modify the Travel Manager System. The new travel\n         2\nsystem, E Solutions, is scheduled to be fully implemented by spring 2009. One aspect\n    2\nof E Solutions is the ability to mask the entire SSN.\n\nFor all 38 systems, Agency staff reported there were mechanisms in place to safeguard\nemployees\xe2\x80\x99 SSNs. For example, security profiles are used to limit access to only\nauthorized employees. Access to the systems is also monitored through the use of \xe2\x80\x9cin-\nline audit systems\xe2\x80\x9d that check transactions for improper activity. We verified the\nmanner in which employees\xe2\x80\x99 SSNs were shown on computer screens to system users\nfor the 38 systems. After our review, the Agency reported updates to three additional\nsystems. However, we did not verify the accuracy of this information. See Appendix D\nfor the results of our review and reported updates concerning the computer screen\ndisplay of employees\xe2\x80\x99 SSNs.\n\n  Recommendation 3: We recommend SSA identify the forms that request the\nemployee\xe2\x80\x99s SSN. If the SSN is not required, eliminate its use on these forms.\n\nIn response to our prior audit, SSA stated it would modify internal forms and consider\nthe continuing need to capture the SSN.\n\nDuring our current review, Agency staff explained SSA was revising its forms that\nrequested employees\' SSNs. For example, in October 2007, staff reported five of\nSSA\xe2\x80\x99s employee-related forms had been modified. These forms were changed to\nrequest the last four digits of the SSN. As of October 3, 2007, we verified certain\nAgency forms had been modified concerning the collection of employees\xe2\x80\x99 SSNs. After\n\n1\n  OMB Memorandum M-07-16, Safeguarding Against and Responding to the Breach of Personally\nIdentifiable Information defines personally identifiable information as information that can be used to\ndistinguish or trace an individual\xe2\x80\x99s identity, such as their name, SSN, biometric records, etc. alone, or\nwhen combined with other personal or identifying information which is linked or linkable to a specific\nindividual, such as date and place of birth, mother\xe2\x80\x99s maiden name, etc.\n\x0cPage 4 - The Commissioner\n\n\nour review, the Agency reported updates to 11 of its forms. We did not verify the\naccuracy of this information. See Appendix E for the forms we reviewed and the\nsubsequent information reported for the display of employees\xe2\x80\x99 SSNs on SSA\xe2\x80\x99s forms.\n\n   Recommendation 4: We recommend SSA determine if it is cost beneficial to use\nan alternative primary identifier for its employees, such as the one used in the On-Line\nUniversity 2, for all future SSA systems. If determined to be cost-beneficial, then\nimplement an alternative primary identifier.\n\nSSA agreed with our recommendation but indicated it was bound by Executive Order\n9397 and the Civil Service Commission (now known as the Office of Personnel\nManagement [OPM]) mandate to use the SSN as the identifying number for Federal\nemployees. We verified OPM is developing an alternative identifier for all Federal\nemployees, known as the Unique Employee Identifier (UEID). OPM has not developed\nall the UEID business requirements. Once the business requirements are developed,\nOPM will need to develop the information technology resources to support Federal\nagencies\xe2\x80\x99 use of the UEID.\n\nBased on the planned use of the UEID by Federal agencies, SSA officials reported it is\nnot financially prudent to develop an SSA-specific alternative primary identifier for its\nemployees and/or modify its systems at this time. When OPM has implemented use of\nthe UEID, the Agency can consider the modifications and timeframes required to\nimplement the use of the UEID in the context of its budget and available resources.\n\n   Recommendation 5: We recommend SSA consider and use, as indicated in\nAgency policy, encryption if feasible and not cost prohibitive.\n\nSSA responded it used dedicated lines and Connect Direct when transmitting payroll\ninformation to the Department of the Interior (the example cited in the prior report) and\ntherefore believed it was in compliance with the policy as written. In our current review,\nwe verified that SSA payroll information transmitted from the Agency to the Department\nof the Interior is encrypted.\n\n\n\n\n2\n SSA implemented SSA GoLearn on April 1, 2005 as a replacement for On-Line University. On\nApril 1, 2008 SSA Learn was implemented as a replacement for SSA GoLearn.\n\x0cPage 5 - The Commissioner\n\n\nCONCLUSION AND RECOMMENDATION\nBased on our observations, examination of data, and discussions with SSA staff, we\nbelieve the recommendations from our prior report have been addressed by the\nAgency. SSA had taken action to implement the five recommendations from our\nAugust 2004 report. However, to further protect its employees\xe2\x80\x99 SSNs, we recommend\nSSA continue removing or minimizing the use of these SSNs in its systems and forms.\n\nAGENCY COMMENTS\nSSA agreed with our conclusion and recommendation. See Appendix G for the full text\nof SSA\xe2\x80\x99s comments.\n\nOTHER MATTER\n\nOther Actions Regarding the Use of Social Security Administration\nEmployees\xe2\x80\x99 Social Security Numbers\n\nDuring our current review, we examined other SSA actions regarding the use of\nemployees\xe2\x80\x99 SSNs. On January 16, 2007, SSA reported to OMB how its business\nprocesses used SSNs, as well as alternatives, vulnerabilities and safeguards for SSNs.\nWe examined the accuracy of the data applicable to the Agency\xe2\x80\x99s use of employees\xe2\x80\x99\nSSNs. Based on our observations, review of the data, and discussions with SSA staff,\nwe believe the information SSA reported to OMB on actions taken and pending\nregarding the use of employees\xe2\x80\x99 SSNs was accurate. See Appendix C for the specific\nemployee-related information systems and forms included in our examination.\n\nIn a related matter, on May 22, 2007, OMB issued Memorandum M-07-16,\nSafeguarding Against and Responding to the Breach of Personally Identifiable\nInformation. According to OMB\'s Memorandum, safeguarding personally identifiable\n            3\ninformation in the Government\xe2\x80\x99s possession and preventing its breach are essential to\nensure the Government retains the trust of the American public. In response to the\nOMB memorandum, on September 28, 2007, SSA issued its plan to eliminate the\nunnecessary collection and use of SSNs. See Appendix F for the excerpt of the plan\nthat relates to employees\xe2\x80\x99 SSNs collection and use.\n\n\n\n\n                                              Patrick P. O\xe2\x80\x99Carroll, Jr.\n\n\n\n\n3\n    See Footnote 1 on p. 3.\n\x0c                                      Appendices\nAPPENDIX A \xe2\x80\x93 Acronyms\n\nAPPENDIX B \xe2\x80\x93 Scope and Methodology\n\nAPPENDIX C \xe2\x80\x93 The Social Security Administration\xe2\x80\x99s Response to the Office of\n             Management and Budget on the Use of Social Security Numbers\n\nAPPENDIX D \xe2\x80\x93 Employees\xe2\x80\x99 Social Security Number As Displayed on the Social\n             Security Administration\xe2\x80\x99s Computer Screens\n\nAPPENDIX E \xe2\x80\x93 Social Security Administration Forms: Request and Display of\n             Employees\xe2\x80\x99 Social Security Numbers\n\nAPPENDIX F \xe2\x80\x93 Excerpt: The Social Security Administration\xe2\x80\x99s Implementation Plan to\n             Eliminate the Unnecessary Use of Social Security Numbers\n\nAPPENDIX G \xe2\x80\x93 Agency Comments\n\nAPPENDIX H \xe2\x80\x93 OIG Contacts and Staff Acknowledgments\n\x0c                                         Appendix A\n\nAcronyms\nOMB    Office of Management and Budget\nOPM    Office of Personnel Management\nSSA    Social Security Administration\nSSN    Social Security Number\nUEID   Unique Employee Identifier\n\x0c                                                                      Appendix B\n\nScope and Methodology\nTo accomplish our objective, we:\n\n\xe2\x80\xa2   Identified and reviewed applicable laws and regulations.\n\n\xe2\x80\xa2   Identified and reviewed relevant Social Security Administration (SSA) policies and\n    procedures.\n\n\xe2\x80\xa2   Identified and reviewed prior relevant audits.\n\n\xe2\x80\xa2   Interviewed SSA personnel responsible for controls over the use of Social Security\n    numbers (SSN).\n\n\xe2\x80\xa2   Identified and reviewed pertinent SSA employee forms that include SSNs.\n\n\xe2\x80\xa2   Identified and reviewed pertinent SSA employee forms that include unique\n    identifiers other than SSNs.\n\n\xe2\x80\xa2   Determined the Agency\xe2\x80\x99s internal use of SSNs.\n\n\xe2\x80\xa2   Observed the safeguards implemented by the Agency.\n\nIn addition, we observed the display and use of employees\xe2\x80\x99 SSNs in information\nsystems, reviewed the display of SSNs on various forms and system-related data, and\ninterviewed Agency staff. See Appendix C for a list of the information systems and\nforms reviewed. Also, we reviewed SSA\xe2\x80\x99s response to Office of Management and\nBudget Memorandum M-07-16, Safeguarding Against and Responding to the Breach of\nPersonally Identifiable Information, as it relates to the unnecessary collection and use\nof Agency employees\xe2\x80\x99 SSNs (see Appendix F).\n\nWe conducted this performance audit in accordance with generally accepted\ngovernment auditing standards. Those standards require that we plan and perform the\naudit to obtain sufficient, appropriate evidence to provide a reasonable basis for our\nfindings and conclusions based on our audit objectives. We believe the evidence\nobtained provides a reasonable basis for our findings and conclusions based on our\naudit objectives. Our audit was performed between June and October 2007 in\nBaltimore, Maryland. The entities audited were the Offices of Human Resources;\nGeneral Counsel; Budget, Finance, and Management, Acquisition and Grants; and\nSystems.\n\x0c                                                                               Appendix C\nThe Social Security Administration\xe2\x80\x99s Response to the\nOffice of Management and Budget on the Use of Social\nSecurity Numbers\nWe examined the accuracy of information reported by the Social Security\nAdministration (SSA) to the Office of Management and Budget (OMB) pertaining to the\nuse of Agency employees\xe2\x80\x99 Social Security numbers (SSN). In its September 2006\nSummary of Interim Recommendations, the President\'s Identity Theft Task Force\nrecommended that OMB require that all Federal agencies review their use of SSNs.\nSpecifically, agencies were to determine whether such use can be eliminated,\nrestricted, or concealed in agency business processes, systems and electronic forms.\n\nOn January 16, 2007, the Agency reported how its business processes used SSNs, as\nwell as alternatives, vulnerabilities and safeguards for SSNs. We examined the data\napplicable to the use of Agency employees\xe2\x80\x99 SSNs. Based on our observations, review\nof the data, and discussions with SSA staff, we believe the information SSA reported to\nOMB on actions taken and pending regarding the use of employees\xe2\x80\x99 SSNs was\naccurate. The following identifies, by business processes, the information systems and\nforms we reviewed related to employees\xe2\x80\x99 SSNs.\n\n                Budget, Financial and Administrative Services Process\n                                         System/Form Name\n\n                                         Travel Manager System\n                                      Travel Credit Card Application\n                         Administrative Payments Information Network System\n                             Finance Interactive Voice Response System\n                        Payments Claims and Enhanced Reconciliation System\n                                       Third Party Payment System\n                                        Purchase Card Application\n                                             Tally Up System 1\n                           Suitability Checks for Employees and Contractors\n                           Comprehensive Integrity Review Process System\n                                            Audit Trail System\n\n\n\n\n1\n  The Tally Up System is used to compute the Income Tax Relocation Allowance. SSA reports this\ninformation to the Internal Revenue Service.\n\n\n                                                C-1\n\x0c                                    Human Resources Process\n                                             System/Form Name\n\n                                   Collection of Time & Attendance Data\n                                   Mainframe Time & Attendance System\n                                 Transmission of Time & Attendance Data\n                                     Job Announcement Status Check\n                                               Awards Database\n                                Official Personnel Folder Tracking System\n                        Performance Assessment and Communications System\n                                  Mainframe Grievance Tracking System\n                           Human Resource Management Information System\n                                      Employee Suggestion Program\n                             Employee Assistance Program Client Database\n             Equal Employment Opportunity Complaint File/Complaint Form/Counseling File\n                   Office of Civil Rights and Equal Opportunity iComplaints Database\n                              Reasonable Accommodation Tracking System\n                                     Disability Services Team Database\n                                    Reasonable Accommodation Wizard\n                         SSA-501-F3, Request for Reasonable Accommodation\n                          Placement and Full Time Equivalent Pool Databases\n                               Training Nomination and Authorization Form\n                    Interactive Video Teletraining Online Course Registration Form\n                             Interactive Video Teletraining One Touch Logon\n                                             Blackboard System 2\n                                Career Development Program Application\n                                    Official Union Time Tracking System\n\n                               Office of General Counsel Process\n                                                 System Name\n\n                                            Salary Overpayments\n                                    Equal Employment Opportunity Cases\n                                   Merit Systems Protection Board Cases\n                                Electronic Freedom of Information Act System\n                                   Freedom of Information Act Processes\n\n                                     Office of Appeals Process\n                                                  Form Name\n\n                                     In-House Training Registration Form\n\n\n\n\n2\n  SSA\xe2\x80\x99s Office of Training\xe2\x80\x99s Blackboard is an on-line application used for registration and student logon for\ntest taking for entry level courses.\n\n\n                                                    C-2\n\x0c                                                                                  Appendix D\nEmployees\xe2\x80\x99 Social Security Numbers As Displayed on the\nSocial Security Administration\xe2\x80\x99s Computer Screens\nFor the following 38 automated information systems, we verified the manner in which\nAgency employees\xe2\x80\x99 Social Security numbers were shown on computer screens to\nsystem users.\n\n                            System                                   Display of Employees\xe2\x80\x99 SSNs\n Performance Assessment & Communications System (PACS)                                          Last 4 Digits\n iComplaints                                                                                  Asterisks Used\n Labor Relations Case Tracking System                                                               Not Used\n EEO Time Tracking System                                                                           Not Used\n Employee Suggestion Program                                                                       Removed\n Blackboard                                                                                         Not Used\n IVT Online Registration                                                                            Not Used\n IVT One-Touch Systems                                                                              Not Used\n Training Online Nomination System                                                                 Removed\n Travel Manager                                                                               Complete SSN\n Travel Credit Card Application                                                               Complete SSN\n Administrative Payments Information Network System                                           Complete SSN\n Finance Interactive Voice Response System                                                    Complete SSN\n Payments Claims and Enhanced Reconciliation System                                           Complete SSN\n Third Party Payment System                                                                   Asterisks Used\n Purchase Card Application                                                                    Complete SSN\n Tally Up System                                                                              Complete SSN\n Suitability Checks for Employees and Contractors                                             Complete SSN\n Comprehensive Integrity Review Process System                                                Complete SSN\n Audit Trail System                                                                                 Not Used\n Mainframe Time and Attendance System                                                         Asterisks Used\n Transmission of Time and Attendance Data                                                     Complete SSN\n Job Announcement Status Check                                                                    Removed*\n Awards Database                                                                                Last 4 Digits\n Official Personnel Folder Tracking System                                                      Last 4 Digits\n Human Resource Management Information System                                                 Complete SSN\n Employee Assistance Program Client Database                                                       Removed\n Reasonable Accommodation Tracking System                                                    Complete SSN*\n Disability Services Team Database                                                            Complete SSN\n Reasonable Accommodation Wizard                                                              Complete SSN\n Placement and Full Time Equivalent Pool Databases                                            Complete SSN\n Career Development Program Application                                                        Last 4 Digits*\n Official Union Time Tracking System                                                          Complete SSN\n Salary Overpayments                                                                                Not Used\n Equal Employment Opportunity Cases                                                                 Not Used\n Merit Systems Protection Board Cases                                                               Not Used\n Electronic Freedom of Information Act System                                    If Provided, Complete SSN\n Freedom of Information Act Processes                                            If Provided, Complete SSN\n\n* After our review, the Agency reported updated information for these systems. In addition, SSA\xe2\x80\x99s Office\nof Training reported the complete SSNs for non-SSA employees is displayed on the Career Development\nProgram Application for the Senior Executive Service candidates. However, we did not verify the\naccuracy of this information.\n\x0c                                                                                 Appendix E\nSocial Security Administration Forms: Request and\nDisplay of Employees\xe2\x80\x99 Social Security Numbers\nDuring our review, we determined whether certain forms used by the Social Security\nAdministration had been modified concerning the collection and display of its\nemployees\xe2\x80\x99 Social Security numbers. Below are the forms we reviewed, and whether\nthe forms have been or will be modified.\n\n                                                                        Requested       Implementation\n    Form                                  Form                         Employees\xe2\x80\x99           Date of\n   Number                                 Title                         SSN Data          Revisions\n SSA-4392        Nomination for SSA Honor Award                       Last 4 Digits     Completed\n SSA-3136        Application to Participate in the Leave Transfer     Last 4 Digits     Completed\n                 Program\n SSA-3555        SSA Employment Agreement                             Last 4 Digits     Completed\n SSA-1400        Salary Recommendation                                Last 4 Digits     Completed\n SSA-476         Request for Official Correspondence Address          Last 4 Digits     Completed\n SSA-231         PACS Performance Plan for Team Leaders               Last 4 Digits     Completed*\n SSA-232         PACS Performance Plan: Managers and                  Last 4 Digits     Completed*\n                 Supervisors\n SSA-233         PACS Performance Plan: New Hires/Trainees            Last 4 Digits     Completed*\n SSA-5072        Request for Medical Treatment                        Last 4 Digits     May 2008*\n SSA-171U3       Recommendation for Monetary or Time Off Awards       Last 4 Digits     Discontinued\n                                                                                        paper form in\n                                                                                        November 2007*\n SSA-331         Performance Assessment for Non Supervisory           Last 4 Digits     Completed*\n                 Employees\n SSA-332         Performance Assessment for Supervisory               Last 4 Digits     Completed*\n                 Employees\n SSA-170         Employee Suggestion Form                             Not Requested     Completed\n SSA-2770        Information for reporting non-receipt of hard copy   Last 4 Digits*    Completed\n                 salary check\n SSA-2771        Information for reporting non-receipt of Direct      Last 4 Digits*    Completed\n                 Deposit/Electronic Funds Transfer payment\n SSA-3948        Request to Change to Part Time Employment            Not Requested     Completed*\n SSA-71          Application for Leave                                Not Requested     Completed*\n SSA-501-F3      Request for Reasonable Accommodation                 Complete SSN\n SSA-352-        Training Nomination and Authorization Form           Complete SSN\n U10\n                 Interactive Video Teletraining Online Course         Not Requested\n                 Registration Form\n                 Equal Employment Opportunity Complaint               Not Requested\n                 File/Complaint Form/Counseling File\n                 Office of Disability Adjudication and Review In-     Not Requested\n                 House Training Registration Form\n\n* After our review, the Agency reported changes had been made to these forms. We did not verify the\naccuracy of this information.\n\x0c                                                                               Appendix F\n\nExcerpt: The Social Security Administration\xe2\x80\x99s\nImplementation Plan to Eliminate the Unnecessary Use of\nSocial Security Numbers\nOffice of Management and Budget (OMB) Memorandum M-07-16, Safeguarding\nAgainst and Responding to the Breach of Personally Identifiable Information, issued\nMay 22, 2007, requires that all agencies (1) review their use of Social Security numbers\n(SSN) in agency systems and programs; (2) identify instances in which collection or use\nof the SSN is superfluous; and (3) establish, within 120 days, a plan to eliminate\nunnecessary collection and use of SSNs within 18 months. Generally, Personally\nIdentifiable Information refers to information that can be used to distinguish or trace an\nindividual\'s identity, such as his/her name, Social Security number, biometric records\netc., alone, or when combined with other personal or identifying information which is\nlinked or linkable to a specific individual such as date and place of birth, mother\'s\nmaiden name, etc.\n                                                                                  1\nIn response to the OMB memorandum, on September 28, 2007, SSA issued a plan to\neliminate the unnecessary collection and use of SSNs. The following is an excerpt from\nthe plan that relates to employees\xe2\x80\x99 SSN collection and use.\n\n    Many personnel-related activities require interagency operability. Executive\n    Order 9397 requires federal agencies to use SSNs as numerical identifiers for\n    individuals in most federal records systems. Therefore, until the Executive\n    Order is partially rescinded, and the Office of Personnel Management (OPM)\n    develops the Universal Employee Identifier (UEID), it is not efficient to create an\n    interim replacement identifier for employees. However, SSA has taken steps to\n    remove the SSN from several of its personnel forms and processes.\n\n       \xe2\x80\xa2   Payroll \xe2\x80\x93 Mainframe Time and Attendance System displays an\n           employee\xe2\x80\x99s SSN only when it is initially being entered into the system.\n           After initial entry, asterisks are used to hide the SSN and records are\n           accessed by using an employee\xe2\x80\x99s name.\n\n       \xe2\x80\xa2   Training \xe2\x80\x93 Uses an employee personal identification number (PIN)\n           (6 digit number assigned to employees for systems access) to log on\n           to the national Interactive Video Training network.          Prior to\n           June 4, 2007, employees used their SSNs to log on to the system.\n\n1\n As required by OMB Memorandum M-07-19, FY 2007 Reporting Instructions for the Federal Information\nSecurity Management Act and Agency Privacy Management, issued July 25, 2007, SSA\xe2\x80\x99s plan for\nsafeguarding against and responding to the breach of PII was included as an appendix to the Agency\xe2\x80\x99s\nannual Federal Information System Management Act report, issued October 1, 2007\n\n\n                                                F-1\n\x0c\xe2\x80\xa2   Career Development Program Application \xe2\x80\x93 The employee identifier\n    will be converted from the SSN to the employee PIN by March 2008.\n\n\xe2\x80\xa2   Labor Relations \xe2\x80\x93 Grievance Tracking \xe2\x80\x93 The current application which\n    uses the SSN will be phased out by September 30, 2007. The\n    replacement application uses a combination of name and locator.\n\n\xe2\x80\xa2   Employee Suggestion Form \xe2\x80\x93 An online electronic process which does\n    not use the SSN is used to process 92% of suggestions. Since\n    electronic submission is voluntary and 8% of employees still use the\n    paper form, the paper form was revised to eliminate the SSN in\n    August 2007.\n\n\xe2\x80\xa2   Employee Assistance Program (EAP) Client Database \xe2\x80\x93 The current\n    application which uses the SSN will be phased out by\n    December 31, 2007. The new application uses the SSN only to assign\n    a case number which will be used throughout the process.\n\n\xe2\x80\xa2   Equal Employment Opportunity (EEO) Complaints \xe2\x80\x93 A new version of\n    the iComplaint system which masks the SSN with asterisks was\n    implemented on July 28, 2007. The SSN is used to propagate the\n    correct and appropriate personnel data for a given employee into the\n    Human Resource Management Information System (HRMIS). Also,\n    the vendor of iComplaints will make accommodations for the UEID in a\n    future version.\n\n\xe2\x80\xa2   The Office of Human Resources (OHR) has reviewed all SSA forms on\n    the Human Resources internal website to determine necessary versus\n    unnecessary use of the SSN and is making revisions to remove the\n    SSN on the following forms:\n\n       o SSA-3948 \xe2\x80\x93 Request For Change to Part Time/Full-Time\n         Employment \xe2\x80\x93 revision completed in June 2007\n       o SSA-1400 \xe2\x80\x93 Salary Recommendation \xe2\x80\x93 mid September 2007\n       o SSA-3555 \xe2\x80\x93 Employment Agreement \xe2\x80\x93 revision completed in\n         August 2007\n       o SSA-71 \xe2\x80\x93 Application for Leave \xe2\x80\x93 mid November 2007\n\n\xe2\x80\xa2   OHR determined that it is no longer necessary to collect the entire\n    SSN on the following forms but it is still necessary to collect a part of\n    the SSN so that the data can be associated with the correct individual.\n    The SSN will be truncated (last four digits only) on the following forms:\n\n       o SSA-4392 \xe2\x80\x93 Nomination for SSA Honor Award \xe2\x80\x93 mid\n         September 2007\n\n\n\n                                     F-2\n\x0c       o SSA-3136 \xe2\x80\x93 Application to Participate in the Leave Transfer\n         Program \xe2\x80\x93 mid September 2007\n       o SSA-2770 \xe2\x80\x93 Information for Reporting Non-Receipt of Hard\n         Copy Salary Check \xe2\x80\x93 revision completed in August 2007\n       o SSA-2771 \xe2\x80\x93 Information for Reporting Non-Receipt of Direct\n         Deposit/ Electronic Fund Transfer (DD/EFT) Payments \xe2\x80\x93\n         revision completed in August 2007\n       o SSA-476 \xe2\x80\x93 Request for Official Correspondence Address \xe2\x80\x93\n         revision completed in August 2007\n       o SSA-171U3 \xe2\x80\x93 Recommendation for Monetary or Time Off\n         Award \xe2\x80\x93 mid November 2007\n\n\xe2\x80\xa2   SSA-5072 \xe2\x80\x93 Request for Medical Treatment \xe2\x80\x93 is directed to\n    employees\xe2\x80\x99 physicians, a non-Federal population. The form has to go\n    through the Office of Publications and Logistics Management (OPLM)\n    process and since it is a form that goes out to the public, OPLM has to\n    send it to OMB for review, which usually takes nine months. OHR\n    submitted its request to change this form in June 2007; it does not\n    have a completion target. In the interim, SSA\xe2\x80\x99s nurses are instructing\n    employees to provide only the last four digits of their SSN prior to\n    submitting it to their doctors. We have no control over what a\n    physician\xe2\x80\x99s office needs so it is conceivable that the physician\xe2\x80\x99s office\n    may require the full SSN. OHR is monitoring the process for\n    compliance with the new instruction.\n\n\xe2\x80\xa2   Employee Performance Plans\n\n       o SSA currently has two major systems in use, the Performance\n         Assessment and Communication System (PACS) which was\n         implemented in October 2006 and the Pass/Fail system which\n         has been in use since 1995. Forms SSA-230, 231, 232 and\n         233 were created during the development of PACS to\n         document employee performance. These forms collect the\n         entire SSN. PACS was implemented in October 2006, as a\n         web-based application which requires managers to input only\n         the last four digits of an employee\xe2\x80\x99s SSN. The paper SSA-\n         231, 232 and 233 forms are available to be used in rare\n         instances in which a supervisor has to issue a rating, but\n         cannot access the web-based system. OHR plans to revise\n         these forms to collect only the last four digits of the SSN by\n         December 2007.\n\n\n\n\n                                     F-3\n\x0c       o Some of the union contracts for a small portion of SSA\n         employees still require SSA to use a Pass/Fail system. The\n         Pass/Fail system uses the SSA-331 and SSA-332 to\n         document employee performance. These forms collect the\n         entire SSN. OHR is working on revising both of these forms\n         to collect only the last four digits of the SSN. The revisions\n         should be completed by mid November 2007.\n\n\xe2\x80\xa2   OHR has had a number of internal discussions about removing or\n    masking the SSN from other applications, but it is deferring action until\n    OPM proceeds with the UEID.\n\n\n\n\n                                     F-4\n\x0c                  Appendix G\n\nAgency Comments\n\x0c                                         SOCIAL SECURITY\n\nMEMORANDUM\n\n\nDate:      April 28, 2008                                                        Refer To: S1J-3\n\nTo:        Patrick P. O\'Carroll, Jr.\n           Inspector General\n\nFrom:      David V. Foster /s/\n           Chief of Staff\n\nSubject:   Office of the Inspector General (OIG) Draft Report, "Follow-up: The Social Security\n           Administration\xe2\x80\x99s Internal Use of Employees\xe2\x80\x99 Social Security Numbers" (A-13-07-27164)\xe2\x80\x94\n           INFORMATION\n\n           We appreciate OIG\xe2\x80\x99s efforts in conducting this review. Our response to the report findings and\n           recommendation are attached.\n\n           Please let me know if we can be of further assistance. Staff inquiries may be directed to\n           Ms. Candace Skurnik, Director, Audit Management and Liaison Staff, at extension 54636.\n\n           Attachment:\n           SSA Response\n\n\n\n\n                                                         G-1\n\x0cCOMMENTS ON THE OFFICE OF THE INSPECTOR GENERAL (OIG) DRAFT\nREPORT, "FOLLOW-UP: THE SOCIAL SECURITY ADMINISTRATION\xe2\x80\x99S\nINTERNAL USE OF EMPLOYEES\xe2\x80\x99 SOCIAL SECURITY NUMBERS" (A-13-07-27164)\n\n\nThank you for the opportunity to review and comment on the draft report. Our response to the\nrecommendation is provided below.\n\nRecommendation 1\n\nContinue removing or minimizing the use of these Social Security numbers (SSN) in our systems\nand forms.\n\nResponse\n\nWe agree. We will continue to remove or minimize the use of SSNs in our systems and forms\nwherever possible.\n\n\n\n\n                                             G-2\n\x0c                                                                     Appendix H\n\nOIG Contacts and Staff Acknowledgments\nOIG Contacts\n\n   Shirley E. Todd, Director, General Management Audit Division, (410) 966-9365\n\n   Randy Townsley, Audit Manager, (410) 966-1039\n\nAcknowledgments\n\nIn addition to those named above:\n\n   Linda Webester, Auditor-in-Charge\n\n   Nicole Gordon, Auditor\n\nFor additional copies of this report, please visit our web site at\nwww.socialsecurity.gov/oig or contact the Office of the Inspector General\xe2\x80\x99s Public\nAffairs Specialist at (410) 965-3218. Refer to Common Identification Number\nA-13-07-27164.\n\x0c                           DISTRIBUTION SCHEDULE\n\n\n\nCommissioner of Social Security\nOffice of Management and Budget, Income Maintenance Branch\nChairman and Ranking Member, Committee on Ways and Means\nChief of Staff, Committee on Ways and Means\nChairman and Ranking Minority Member, Subcommittee on Social Security\nMajority and Minority Staff Director, Subcommittee on Social Security\nChairman and Ranking Minority Member, Committee on the Budget, House of\nRepresentatives\nChairman and Ranking Minority Member, Committee on Oversight and Government\nReform\nChairman and Ranking Minority Member, Committee on Appropriations, House of\nRepresentatives\nChairman and Ranking Minority, Subcommittee on Labor, Health and Human Services,\nEducation and Related Agencies, Committee on Appropriations,\n House of Representatives\nChairman and Ranking Minority Member, Committee on Appropriations, U.S. Senate\nChairman and Ranking Minority Member, Subcommittee on Labor, Health and Human\nServices, Education and Related Agencies, Committee on Appropriations, U.S. Senate\nChairman and Ranking Minority Member, Committee on Finance\nChairman and Ranking Minority Member, Subcommittee on Social Security Pensions\nand Family Policy\nChairman and Ranking Minority Member, Senate Special Committee on Aging\nSocial Security Advisory Board\n\x0c                     Overview of the Office of the Inspector General\nThe Office of the Inspector General (OIG) is comprised of an Office of Audit (OA), Office of\nInvestigations (OI), Office of the Chief Counsel to the Inspector General (OCCIG), Office of External\nRelations (OER), and Office of Technology and Resource Management (OTRM). To ensure compliance\nwith policies and procedures, internal controls, and professional standards, the OIG also has a\ncomprehensive Professional Responsibility and Quality Assurance program.\n                                            Office of Audit\nOA conducts financial and performance audits of the Social Security Administration\xe2\x80\x99s (SSA) programs\nand operations and makes recommendations to ensure program objectives are achieved effectively and\nefficiently. Financial audits assess whether SSA\xe2\x80\x99s financial statements fairly present SSA\xe2\x80\x99s financial\nposition, results of operations, and cash flow. Performance audits review the economy, efficiency, and\neffectiveness of SSA\xe2\x80\x99s programs and operations. OA also conducts short-term management reviews and\nprogram evaluations on issues of concern to SSA, Congress, and the general public.\n                                       Office of Investigations\nOI conducts investigations related to fraud, waste, abuse, and mismanagement in SSA programs and\noperations. This includes wrongdoing by applicants, beneficiaries, contractors, third parties, or SSA\nemployees performing their official duties. This office serves as liaison to the Department of Justice on\nall matters relating to the investigation of SSA programs and personnel. OI also conducts joint\ninvestigations with other Federal, State, and local law enforcement agencies.\n                        Office of the Counsel to the Inspector General\nOCIG provides independent legal advice and counsel to the IG on various matters, including statutes,\nregulations, legislation, and policy directives. OCIG also advises the IG on investigative procedures and\ntechniques, as well as on legal implications and conclusions to be drawn from audit and investigative\nmaterial. Also, OCIG administers the Civil Monetary Penalty program.\n                                    Office of External Relations\nOER manages OIG\xe2\x80\x99s external and public affairs programs, and serves as the principal advisor on news\nreleases and in providing information to the various news reporting services. OER develops OIG\xe2\x80\x99s media\nand public information policies, directs OIG\xe2\x80\x99s external and public affairs programs, and serves as the\nprimary contact for those seeking information about OIG. OER prepares OIG publications, speeches,\nand presentations to internal and external organizations, and responds to Congressional correspondence.\n                       Office of Technology and Resource Management\nOTRM supports OIG by providing information management and systems security. OTRM also\ncoordinates OIG\xe2\x80\x99s budget, procurement, telecommunications, facilities, and human resources. In\naddition, OTRM is the focal point for OIG\xe2\x80\x99s strategic planning function, and the development and\nmonitoring of performance measures. In addition, OTRM receives and assigns for action allegations of\ncriminal and administrative violations of Social Security laws, identifies fugitives receiving benefit\npayments from SSA, and provides technological assistance to investigations.\n\x0c'